389-ds-base-devel vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the 389-ds-base-devel package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Improper Validation of Consistency within Input	<0:1.4.3.39-8.module+el8.10.0+90403+39ad56f1
H Improper Input Validation	<0:1.4.3.39-7.module+el8.10.0+90358+1275b17f
H CVE-2024-3657	<0:1.4.3.39-7.module+el8.10.0+90358+1275b17f
M Heap-based Buffer Overflow	<0:1.4.3.39-3.module+el8.10.0+90328+4f014c15
M NULL Pointer Dereference	<0:1.4.3.28-8.module+el8.6.0+20852+b8a6303c
M CVE-2022-0918	<0:1.4.3.28-7.module+el8.6.0+20716+53f13155
M Improper Authentication	<0:1.4.3.28-7.module+el8.6.0+20716+53f13155
L Double Free	<0:1.4.3.23-14.module+el8.5.0+20517+748852bc
L CVE-2021-3652	<0:1.4.3.16-19.module+el8.4.0+20279+846fb4fe
M NULL Pointer Dereference	<0:1.4.3.16-16.module+el8.4.0+20199+8c6d81ae
M Information Exposure	<0:1.4.3.8-7.module+el8.3.0+20006+53cafd96
H Information Exposure	<0:1.4.1.3-7.module+el8.1.0+5386+aef60ae7
H Cleartext Storage of Sensitive Information	<0:1.4.1.3-7.module+el8.1.0+5386+aef60ae7
H Incorrect Permission Assignment for Critical Resource	<0:1.4.1.3-7.module+el8.1.0+5386+aef60ae7
H Missing Release of Resource after Effective Lifetime	<0:1.4.1.3-7.module+el8.1.0+5386+aef60ae7